[TOPF] Logwatch for h2361197.stratoserver.net (Linux)

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Tue Nov 20 04:42:03 2018 Date Range Processed: yesterday ( 2018-Nov-19 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 124.235.138.236 -> zapf.wiki:443: 1 Time(s) A total of 5 sites probed the server 123.145.9.226 151.80.39.158 213.186.170.226 5.196.87.19 61.219.11.151 Requests with error response codes 400 Bad Request null: 6 Time(s) mstshash=Administr: 4 Time(s) mstshash=Test: 4 Time(s) /: 1 Time(s) /w00tw00t.at.ISC.SANS.DFind:): 1 Time(s) v\x89Dm\xEE\x8B4\x8D#\xCB\x1B~\x1Ei\x84\x1 ... C0$\xC0\x14\xC0: 1 Time(s) www.baidu.com: 1 Time(s) zapf.wiki:443: 1 Time(s) 404 Not Found /favicon.ico: 7 Time(s) /robots.txt: 6 Time(s) /wp-login.php: 6 Time(s) /guestbook.php: 2 Time(s) /CGI/guestbook?page=1: 1 Time(s) /Guestbook.php: 1 Time(s) /Robots.txt: 1 Time(s) /YaBB.cgi: 1 Time(s) /album.cgi: 1 Time(s) /apps/guestbook: 1 Time(s) /aska.cgi: 1 Time(s) /assets/components/gallery/css/mgr.css: 1 Time(s) /bbs.cgi: 1 Time(s) /besekeakmtkmkze.html: 1 Time(s) /book.php: 1 Time(s) /default.asp: 1 Time(s) /g_book.cgi: 1 Time(s) /gaestebuch.php: 1 Time(s) /gastenboek.php: 1 Time(s) /gb.php: 1 Time(s) /guestbook: 1 Time(s) /guestbook.html: 1 Time(s) /home.php: 1 Time(s) /index.php/component/users/?view=registration: 1 Time(s) /index.php?act=dispMemberLoginForm: 1 Time(s) /index.php?option=com_user&task=register: 1 Time(s) /jax_guestbook.php: 1 Time(s) /light.cgi: 1 Time(s) /member/: 1 Time(s) /modules.php?name=Your_Account: 1 Time(s) /reader/2016_sose_konstanz_lang.pdf: 1 Time(s) /resolutionen/sose14/reso_sose14_zusammenarbeitzapf-che.pdf: 1 Time(s) /sbb.cgi: 1 Time(s) /scarbook.php: 1 Time(s) /seo-joy.cgi: 1 Time(s) /sunbbs.cgi?mode=form: 1 Time(s) /wp-content/themes/evolve/js/back-end/libr ... oad_handler.php: 1 Time(s) /yabb.pl: 1 Time(s) /yapgb.php: 1 Time(s) /yybbs.cgi: 1 Time(s) 499 (undefined) /fonts/SourceCodePro-Regular.woff: 2 Time(s) /build/af7ae505a9eed503f8b8e6982036873e.woff2: 1 Time(s) /build/emojify.js/dist/css/basic/emojify.min.css: 1 Time(s) /build/index-styles-pack.2c73dce02b1eaa3a3b4e.css: 1 Time(s) /fonts/SourceCodePro-Medium.woff: 1 Time(s) 500 Internal Server Error /: 7 Time(s) //libs/js/iframe.js: 1 Time(s) 502 Bad Gateway /: 23 Time(s) /robots.txt: 1 Time(s) /sitemap.xml: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (113.160.244.144): 6 Time(s) unknown (136.58.83.97): 6 Time(s) unknown (61-219-45-81.hinet-ip.hinet.net): 6 Time(s) unknown (host-217-19-148-142.ip.retelit.it): 6 Time(s) unknown (lmontsouris-657-1-106-170.w80-15.abo.wanadoo.fr): 6 Time(s) unknown (104.248.55.169): 5 Time(s) unknown (wimaxuser36221-182.wateen.net): 5 Time(s) unknown (122.146.86.11): 4 Time(s) unknown (147.ip-51-68-231.eu): 4 Time(s) unknown (178.128.13.21): 4 Time(s) unknown (181.50.99.37): 4 Time(s) unknown (212.224.125.247): 4 Time(s) unknown (33.ip-51-255-45.eu): 4 Time(s) unknown (b2b-78-94-36-59.unitymedia.biz): 4 Time(s) unknown (106.75.76.186): 3 Time(s) unknown (118.45.190.133): 3 Time(s) unknown (135.ip-91-134-134.eu): 3 Time(s) unknown (139.199.131.172): 3 Time(s) unknown (148.228.16.16): 3 Time(s) unknown (150.107.148.155): 3 Time(s) unknown (183.82.106.77): 3 Time(s) unknown (201.132.200.243): 3 Time(s) unknown (202.120.62.138): 3 Time(s) unknown (27.34.243.206): 3 Time(s) unknown (89-162-64-102.fiber.signal.no): 3 Time(s) unknown (ns.mentorsoft.ro): 3 Time(s) unknown (ns3070189.ip-149-202-214.eu): 3 Time(s) unknown (ns3370626.ip-37-187-92.eu): 3 Time(s) unknown (ns354173.ip-91-121-101.eu): 3 Time(s) unknown (www.gogoski.fr): 3 Time(s) unknown (121.201.66.39): 2 Time(s) unknown (132.232.50.90): 2 Time(s) unknown (179.52.35.178): 2 Time(s) unknown (191.34.84.101): 2 Time(s) unknown (206.189.232.29): 2 Time(s) unknown (27.96.91.36): 2 Time(s) unknown (ip119.ip-149-56-10.net): 2 Time(s) unknown (ip4d14dd35.dynamic.kabel-deutschland.de): 2 Time(s) unknown (ns503978.ip-198-245-63.net): 2 Time(s) daemon (191.34.84.101): 1 Time(s) mailman (122.146.86.11): 1 Time(s) mailman (181.50.99.37): 1 Time(s) mysql (27.96.91.36): 1 Time(s) postgres (103.68.38.86): 1 Time(s) postgres (ip119.ip-149-56-10.net): 1 Time(s) root (217.61.59.142): 1 Time(s) unknown (103.15.115.13): 1 Time(s) unknown (103.69.124.247): 1 Time(s) unknown (110-170-166-101.static.asianet.co.th): 1 Time(s) unknown (12.133.183.226): 1 Time(s) unknown (164.160.28.20): 1 Time(s) unknown (165.227.150.158): 1 Time(s) unknown (181.28.191.54): 1 Time(s) unknown (186.46.45.98): 1 Time(s) unknown (202.137.154.146): 1 Time(s) unknown (212.210.124.235): 1 Time(s) unknown (4.16.205.42): 1 Time(s) unknown (47.205.245.164): 1 Time(s) unknown (85.234.34.92): 1 Time(s) unknown (i19-les01-ix2-212-195-196-45.sfr.lns.abo.bbox.fr): 1 Time(s) Invalid Users: Unknown Account: 148 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 57 Miscellaneous warnings 75.442K Bytes accepted 77,253 75.442K Bytes sent via SMTP 77,253 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 1 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 1 Total 4xx Rejects 100.00% ======== ================================================== 143 Connections 10 Connections lost (inbound) 143 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Failed logins from: 27.96.91.36: 1 time 103.68.38.86: 1 time 122.146.86.11 (122-146-86-11.adsl.static.sparqnet.net): 1 time 149.56.10.119 (ip119.ip-149-56-10.net): 1 time 181.50.99.37 (dynamic-ip-1815009937.cable.net.co): 1 time 191.34.84.101 (191.34.84.101.dynamic.adsl.gvt.net.br): 1 time 217.61.59.142 (host142-59-61-217.serverdedicati.aruba.it): 1 time Illegal users from: undef: 104 times 4.16.205.42: 1 time 5.2.228.238 (ns.mentorsoft.ro): 3 times 12.133.183.226: 1 time 27.34.243.206 (27.34.243.206.static.belltele.in): 3 times 27.96.91.36: 2 times 37.187.92.192 (ns3370626.ip-37-187-92.eu): 3 times 47.205.245.164: 1 time 51.68.231.147 (147.ip-51-68-231.eu): 4 times 51.254.37.192 (www.gogoski.fr): 3 times 51.255.45.33 (33.ip-51-255-45.eu): 4 times 61.219.45.81 (61-219-45-81.HINET-IP.hinet.net): 6 times 77.20.221.53: 2 times 78.94.36.59 (b2b-78-94-36-59.unitymedia.biz): 4 times 80.15.92.170 (lmontsouris-657-1-106-170.w80-15.abo.wanadoo.fr): 6 times 85.234.34.92 (pool-34-92.ptcomm.ru): 1 time 89.162.64.102 (89-162-64-102.fiber.signal.no): 3 times 91.121.101.159 (ns354173.ip-91-121-101.eu): 3 times 91.134.134.135 (135.ip-91-134-134.eu): 3 times 103.15.115.13 (103-15-115-13.telinet.com.pg): 1 time 103.69.124.247: 1 time 104.248.55.169: 5 times 106.75.76.186: 3 times 110.36.221.182 (WimaxUser36221-182.wateen.net): 5 times 110.170.166.101 (110-170-166-101.static.asianet.co.th): 1 time 113.160.244.144 (static.vnpt.vn): 6 times 118.45.190.133: 3 times 121.201.66.39: 2 times 122.146.86.11 (122-146-86-11.adsl.static.sparqnet.net): 4 times 132.232.50.90: 2 times 136.58.83.97: 6 times 139.199.131.172: 3 times 148.228.16.16: 3 times 149.56.10.119 (ip119.ip-149-56-10.net): 2 times 149.202.214.11 (ns3070189.ip-149-202-214.eu): 3 times 150.107.148.155: 3 times 164.160.28.20: 1 time 165.227.150.158: 1 time 178.128.13.21: 4 times 179.52.35.178 (178.35.52.179.d.dyn.claro.net.do): 2 times 181.28.191.54 (54-191-28-181.fibertel.com.ar): 1 time 181.50.99.37 (dynamic-ip-1815009937.cable.net.co): 4 times 183.82.106.77 (broadband.actcorp.in): 3 times 186.46.45.98 (98.45.46.186.static.anycast.cnt-grms.ec): 1 time 191.34.84.101 (191.34.84.101.dynamic.adsl.gvt.net.br): 2 times 198.245.63.135 (ns503978.ip-198-245-63.net): 2 times 201.132.200.243 (customer-TOR-200-243.megared.net.mx): 3 times 202.120.62.138: 3 times 202.137.154.146: 1 time 206.189.232.29: 2 times 212.195.196.45 (i19-les01-ix2-212-195-196-45.sfr.lns.abo.bbox.fr): 1 time 212.210.124.235: 1 time 212.224.125.247 (Array.living-bots.net): 4 times 217.19.148.142 (host-217-19-148-142.ip.retelit.it): 6 times **Unmatched Entries** fatal: no matching cipher found: client aes128-cbc,blowfish-cbc,3des-cbc server aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com [preauth] : 25 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 240G 161G 60% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################